SAML Proxy PAN Firewall | FSC

Prisma SaaS is your SAML IdP, not Okta. When you add the SAML IdP on the firewall, you need to use the Prisma SaaS SAML Proxy values.

Import and export the cert

Login to Prisma SaaS --> Settings --> Unmanaged Device Access Control --> SAML Proxy --> Identity Provider Configuration

Download the Idenity Provider Certificate.

Log in to NGFW.

Import the Prisma SaaS certificate prisma_saas.cer .

Config SAML Idenitity Provider

Create the SAML Identity Provider Server Profile .

  • Link to the Prisma SaaS certificate you imported.

  • Settings according to the Screenshot

Create the Authentication Profile

Specify the SAML Identity Provider Server Profile that you created

Locate the SAML Identity Provider Server Profile that you created.

Click on the Metadata link to download and open the file.

Locate and record the Entity ID one the line that begins entityID= .

Create the Client Authentication , specifying the SAML Identity Provider Server Profile

Configure Gateway Settings on Prisma SaaS

Log in to Prisma SaaS.

Select Settings SAML Proxy Gateway Settings Edit.

PreviousPrisma SaaS | FSCNextInitial Setup Prisma SaaS | FSC

Last updated

Was this helpful?